Security Best Practices

Protect Mobile Devices

Security of information at the University of Michigan is a top priority. We must handle all sensitive information entrusted to us with care. Storing such data on a mobile device that is easily lost or stolen places it at risk for exposure. Please protect yourself, your research and the University by following these best practices:

Follow theU-M Standard Practice Guide 601.14 requiring that Social Security numbers used, stored or transmitted on records or record systems be encrypted or properly secured.

Never leave your laptop unattended anywhere. Lock your laptop out of sight when not in use.

If a mobile device containing sensitive data is lost, it should be reported immediately.

Passwords

It is your responsibility to protect your password and guard against unauthorized use of services in your name.

Do not share your login and password. No one should ask you for it. Your password allows anyone to send an e-mail message in your name, as well as access, change or delete your private files.

Do not leave your computer unattended while logged in. Use a locked screen saver, or log out and log back in if necessary.

Memorize your password. Do not write it on paper.

Change your passwords once every six months. You may change your password by following this link.

Web Browsing and Email

You are the first line of defense for your system. If you have any doubts about opening an email attachment, clicking on a pop-up or downloading some software, JUST SAY NO. Through whatever means you have at your disposal, verify that what you are about to click on is safe and legitimate.